Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
File: TStBlpVqQxU0D4J9mSoPeikoTD4.mft (raw, json)
Hash identifier: koISQdwgELILtjnaJ6G/rUWNnhquBHvzRZA4q9JOLcI=
Subject key identifier: 71:B5:3C:02:23:1B:6A:12:CB:26:64:91:E9:AC:08:97:5A:5F:FB:98
Authority key identifier: 4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E
Certificate issuer: /CN=4d2b4196956a4315340f827d992a0f7a29284c3e
Certificate serial: 0198D998CB5B8B72D45E410B6BA5935CF768
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
Manifest number: 12DB
Signing time: Sun 24 Aug 2025 01:02:06 +0000
Manifest this update: Sun 24 Aug 2025 01:02:06 +0000
Manifest next update: Mon 25 Aug 2025 01:02:06 +0000
Files and hashes: 1: TStBlpVqQxU0D4J9mSoPeikoTD4.crl (hash: CagiqjBFLBK/CDDLVPW21H3ztd50dTHB0aFVZoZgNG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:98:cb:5b:8b:72:d4:5e:41:0b:6b:a5:93:5c:f7:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d2b4196956a4315340f827d992a0f7a29284c3e
Validity
Not Before: Aug 24 01:02:06 2025 GMT
Not After : Aug 25 01:02:06 2025 GMT
Subject: CN=71b53c02231b6a12cb266491e9ac08975a5ffb98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2a:07:e1:24:1f:ea:dd:1c:ee:6b:6f:32:3f:
79:25:a8:35:33:9b:7b:ef:cc:44:fd:dd:1b:a7:da:
a2:08:cb:77:60:1d:df:d6:25:8b:6b:c4:c6:f2:99:
d4:03:cb:58:e2:48:6c:ea:21:cc:32:9e:e4:10:45:
17:5f:2c:e9:26:d5:94:fd:5a:42:94:12:a5:a1:af:
81:80:71:46:2c:e4:c6:59:0a:dc:99:74:da:5d:36:
62:ee:4a:36:2b:eb:45:53:b2:60:d9:8c:10:20:c4:
da:36:50:63:73:ee:ba:62:d3:d7:6f:3f:3f:9a:82:
fe:bd:f5:d7:37:6c:a0:45:a4:51:44:96:2f:09:5a:
97:80:f8:6e:9f:a2:39:37:98:b7:34:f5:1e:f4:32:
fa:3d:01:09:b9:ac:54:17:92:d7:ff:cc:fe:c2:20:
1e:37:f5:0c:36:3d:2d:47:e1:95:51:68:29:75:e0:
d9:b8:78:2a:7c:b0:e7:59:3a:e9:ae:99:ba:9e:99:
6b:e1:94:30:f2:ca:35:e7:c1:2d:6c:38:57:4e:bb:
a5:7d:b1:a8:5a:6e:64:e3:87:c2:21:a5:ab:31:a7:
0e:5a:1c:2e:f4:f0:34:06:02:01:fa:9d:70:ad:0e:
c7:9e:df:f6:08:6f:37:21:6f:24:5f:27:7c:8f:84:
13:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B5:3C:02:23:1B:6A:12:CB:26:64:91:E9:AC:08:97:5A:5F:FB:98
X509v3 Authority Key Identifier:
keyid:4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e5:01:9e:4c:be:7b:8a:f1:cd:f1:42:ac:b7:4b:bc:38:62:
70:eb:3f:97:8b:cd:e7:80:a0:c4:17:43:de:9f:b0:ab:7d:26:
89:af:ba:16:3d:46:9b:1a:84:ae:b1:c3:37:fb:30:b8:3a:21:
f4:5b:98:0f:7d:02:f3:a0:47:1d:7e:dd:3f:b7:00:23:db:ee:
71:78:97:9a:9b:5b:b3:3a:10:17:20:d7:bc:1f:95:86:ad:f6:
53:99:2a:45:c6:27:65:38:cf:15:05:36:20:75:dd:7a:72:d0:
2f:1c:af:45:fd:5c:30:66:aa:ff:ac:d0:23:5d:ff:a0:9f:05:
a1:d4:cf:ec:7c:39:fb:ac:6f:2c:4d:26:65:22:61:7b:cf:9d:
56:c2:97:ac:f7:86:59:64:7b:44:5b:d5:8e:5a:29:97:e7:f7:
7c:7b:f2:60:20:c0:99:48:69:c6:96:b0:9e:40:43:4f:58:c7:
8a:a7:6b:5c:e2:81:31:97:f5:45:a5:09:2f:12:df:d6:0a:e6:
f2:39:7f:71:26:02:81:6d:88:61:bc:50:79:eb:50:45:d8:4d:
7e:66:72:c6:4f:e2:03:1f:6c:f0:1b:1d:76:36:8b:cf:be:5a:
7d:9e:0f:4c:78:52:2a:ae:fc:8d:c7:19:7d:30:74:28:b2:eb:
bf:e7:34:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:25:41 2025 by rpki-client